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(54) System for providing enhanced security for transactions transmitted through a distributed 
network 



(57) Transactions sent from a source node to a des- 
tination node interconnected by a distributed network 
are protected from interception by a third party by pass- 
ing the transaction data into several packets which are 



renumbered as a pseudo-random sequence and sent 
along different routes from the source node to the desti- 
nation node. 

FIGURE 1A 



CM 
< 

CO 
CO 




Q. 

LU 



Primed by Xerox (UK) Business Services 
2.16.7/3 6 



1 



EP0 948176A2 



2 



Description 

Field of the Invention 

[0001 ] The present invention is directed to the field of 
network security, and more specifically to preventing 
third parties from intercepting data transmissions over a 
network. 

Background of the Invention 

[0002] As the world becomes ever more tightly con- 
nected with the proliferation and increasing popularity of 
the Internet, electronic commerce will become increas- 
ingly important in our lives. Banks and other financial 
institutions allow customers to access their accounts 
over the internet; brokerage houses allow clients to 
trade stocks, mutual funds and other securities over the 
Internet; and manufacturers, wholesalers, and retailers 
allow customers to order and pay for products over the 
Internet. While the most significant financial transac- 
tions are still carried out over private electronic data 
interchange (EDI), bank, and interbank networks, con- 
sumer credit card transactions are carried out over the 
Internet with increasing frequency. While most of these 
credit card transactions are carried out with some form 
of encryption, user anxiety remains high because mes- 
sages can be intercepted by third parties and translated 
at leisure, using common decryption techniques. Even 
though a relatively small percentage of Internet transac- 
tions contain credit card numbers, one could simply 
locate a merchant that accepts credit card transactions 
and search for those transactions having the merchant's 
IP address. This is guaranteed to lead to the discovery 
of numerous credit card containing packets which can 
then be decrypted offline. 

Summary of the Invention 

[0003] The present invention is a method of providing 
enhanced data security to transactions between two 
stations connected by a network such as the Internet. 
Rather than relying on encryption techniques which can 
be broken, the present invention takes advantage of the 
packetization of Internet messages. Every transaction 
occurring on the Internet is split into a number of differ- 
ent IP packets. For instance, a credit card number hav- 
ing 16 digits could be split into 16 IP packets. Normally, 
IP packets are all sent along the same route from the 
source to the destination. In the method of the present 
invention; however, the packets are sent using many dif- 
ferent routes. This reduces the chances of a third party 
being able to intercept all the packets of a particular 
transaction. Additionally, according to the present inven- 
tion, the IP packets are not numbered sequentially, but 
instead are numbered as an ordered sequence of ran- 
dom numbers. In this way, even if a third party is able to 
intercept a large percentage of the IP packets for a 



given transaction, the third party cannot know how 
many packets are missing or where in the sequence 
they might be missing from. The intended receiver, on 
the other hand, will receive all the packets and merely 
s has to put them in numerical order. 

Brief Description of the Drawings 

[0004] The foregoing aspects and many of the attend- 
ee ant advantages of this invention will become more read- 
ily appreciated as the same becomes better understood 
by reference to the following detailed description, when 
taken in conjunction with the accompanying drawings, 
wherein: 

15 

FIGURE 1A is a block diagram of a general pur- 
pose computer system for implementing the 
present invention; 

FIGURE 1B is a diagram of a network for imple- 

20 meriting the present invention; 

FIGURE 2 is a flow chart depicting an overall oper- 
ation of the present invention; 
FIGURE 3A-3D depict exemplary Internet packet 
numbering schemes according to the prior art and 

25 the present invention; 

FIGURE 4 depicts Internet packet routing accord- 
ing to the prior art; and 

FIGURE 5 depicts the routing of renumbered Inter- 
net packets according to the present invention. 

30 

Detailed Description of the Preferred Embodiment 

[0005] The present invention is directed to a system 
for providing enhanced security to transactions sent 

35 from a client computer to a server computer through a 
distributed network. In accordance with the present 
invention, the system of the present invention executes 
on a computer, such as a general purpose personal 
computer. FIGURES 1A-1B and the following discus- 

40 sion are intended to provide a brief, general description 
of a suitable computing environment in which the inven- 
tion may be implemented. Although not required, the 
invention will generally be implemented as computer- 
executable instructions, such as program modules, 

45 being executed by a personal computer. Generally, pro- 
gram modules include routines, programs, objects, 
components, data structures, etc. that perform particu- 
lar tasks or implement particular abstract data types. 
Moreover, those skilled in the art will appreciate that the 

so invention may be practiced with other computer system 
configurations, multiprocessor systems, minicomputers, 
and mainframe computers. The invention may also be 
practiced in distributed computing environments where 
tasks are performed by remote processing devices that 

55 are linked through a communications network. In a dis- 
tributed computing environment, program modules may 
be located in both local and remote memory storage 
devices. 
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[0006] With reference to FIGURE 1A, an exemplary 
system for implementing the invention includes a gen- 
eral purpose computing device such as a conventional 
personal computer 20, including a processing unit 21, a 
system memory 22, and a system bus 23 that couples 
various system components including the system mem- 
ory to the processing unit 21. The system bus 23 may 
be any of several types of bus structures including a 
memory bus or memory controller, a peripheral bus, 
and a local bus using any of a variety of bus architec- 
tures. System timing is provided by a clock signal (not 
shown) applied to the system bus 23. The system mem- 
ory includes read only memory (ROM) 24 and random 
access memory (RAM) 25. A basic input/output system 
26 (BIOS) is stored in ROM 24, and contains the basic 
routines that helps to transfer information between ele- 
ments within the personal computer 20, such as during 
start-up. The personal computer 20 further includes 
storage devices such as a hard disk drive 27 connected 
to the system bus through a hard drive interface 32 for 
reading data from and writing data to a hard disk 31 . In 
addition, one or more removable disk drives 30 are con- 
nected to the system bus through one or more remova- 
ble storage interfaces 34 for reading data from or writing 
data to removable storage 29, such as floppy disks, 
removable magnetic disks, CD-ROMs or other optical 
media The drives and their associated computer-reada- 
ble media provide nonvolatile storage of computer read- 
able instructions, data structures, program modules and 
other data for the personal computer 20. Although the 
exemplary environment described herein employs a 
hard disk and removable media, it should be appreci- 
ated by those skilled in the art that other types of com- 
puter-readable media which can store data that is 
accessible by a computer, such as magnetic cassettes, 
flash memory cards, digital versatile disks (also known 
as Digital Video Disks or DVDs), Bernoulli cartridges, 
random access memories (RAMs), read only memories 
(ROMs), and the like, may also be used in the exem- 
plary operating environment. 

[0007] A number of program modules may be stored 
on the storage devices, including an operating system 
35, one or more application programs 36, and program 
data 38. A user may enter commands and information 
into the personal computer 20 through input devices 
such as a keyboard 40 and pointing device 42. Other 
input devices (not shown) may include a microphone, 
joystick, game pad, satellite dish, scanner, or the like. 
These and other input devices are often connected to 
the processing unit 21 through a serial interface 46 that 
is coupled to the system bus, but may be connected by 
other interfaces, such as a parallel port, game port or a 
universal serial bus (USB). A display device 47, such as 
a monitor, is also connected to the system bus 23 via a 
video interface 48. In addition to the monitor, personal 
computers typically include other peripheral output 
devices (not shown), such as printers and plotters. 
[0008] The personal computer 20 may operate in a 



networked environment using logical connections to 
one or more remote computers, such as remote com- 
puters 49 and 60. Each remote computer 49 or 60 may 
be another personal computer, a server, a router, a net- 

5 work PC, a peer device or other common network node, 
and typically includes many or all of the elements 
described above relative to the personal computer 20. 
The logical connections depicted in FIGURE 1 A include 
a local area network (LAN) 51 and a wide area network 

70 (WAN) 52, Such networking environments are common- 
place in offices, enterprise-wide computer networks, 
intranets and global networks such as the Internet. As 
depicted in FIGURE 1A, the remote computer 60 com- 
municates with the personal computer 20 via the local 

is area network 51. The remote computer 49 communi- 
cates with the personal computer 20 via the wide area 
network 52. 

[0009] When used in a LAN networking environment, 
the personal computer 20 is connected to the local net- 

20 work 51 through a network interface 53. When used in a 
WAN networking environment, the personal computer 
20 typically includes a modem 54 or other means for 
establishing communications over the wide area net- 
work 52, such as the Internet. The modem 54, which 

25 may be internal or external, is connected to the system 
bus 23 via the serial interface 46. In a networked envi- 
ronment, program modules depicted relative to the per- 
sonal computer 20, or portions thereof, may be stored in 
the remote memory storage device. It will be appreci- 

30 ated that the network connections shown are exemplary 
and other means of establishing a communications link 
between the computers may be used. 
[0010] FIGURE 1B depicts an exemplary distributed 
communications network including a variety of intercon- 

35 nected networks. Geographically distributed networks 
such as network A 201 , network B 202, and network C 
203 are interconnected via gateways 210, which pro- 
vide the necessary interfacing between disparate net- 
works of possibly different bandwidths and packet 

40 handling capabilities as well as possibly different archi- 
tectures. Each of networks A, B, and C may be made up 
of a number of network nodes 215. The network nodes 
215 communicate with each other through physical links 
as well as through radio or microwave transmissions 

45 through relay stations such as a satellite 223. 

[001 1 ] A user at a terminal or personal computer 205 
may access a network through a common access point 
at a network node 215, a local area network (LAN) 220, 
221, a digital PBX 225, or any other common network 

so access points. Two or the more popular local area net- 
work architectures are depicted, the ring 220, and the 
bus 221, but other network topologies may also be 
employed. While the following discussion is directed to 
an Internet environment, the teachings of the present 

55 invention are applicable to any distributed network envi- 
ronment. In the present invention, personal computer 
20 is connected to a distributed network such as the 
Internet, either directly through to modem 54 to a 
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remote computer 49 which serves as an Internet Serv- 
ice Provider (ISP), an Internet router, or through a LAN 
51 to a remote computer 60 which serves as the local 
area network's Internet gateway 210. Each node in the 
path between the user's personal computer 20 and the 
server computer acts as an Internet router. An Internet 
router typically either maintains a routing table having 
entries representing every other router on the network, 
or has a mechanism for determining a route or for ask- 
ing an adjacent router for routing information. The rout- 
ing table will also typically include statistics concerning 
the link between the node and each other connected 
node so that information is available as to the "best" 
path from the node to another node. Typically, routing 
tables contain entries for a primary route, as well as one 
or more alternate routes. Alternatively, a routing algo- 
rithm may be used to establish an appropriate routing 
path from the client to the server. Both routing tables 
and routing algorithms are well known in the art and will 
not be discussed further. Internet routers and ISPs will 
be refened to collectively as "routers" in the remainder 
of the discussion. 

[0012] A user typically interacts with the Internet 
through web browser software (not shown) running off a 
personal computer 20. The web browser software 
allows the user to access remote server computers on 
the Internet through a Uniform Resource Locator (URL), 
which serves as a server's network address. Examples 
of suitable web browsers include Explorer™, available 
from Microsoft Corporation, of Redmond, Washington, 
or Navigator™, available from Netscape Communica- 
tions of Mountain View, California. When the user 
enters or selects a URL through the web browser, the 
URL is forwarded to the router, where a table is checked 
to determine a "best" path to a next node from the router 
to the server designated by the URL Interaction 
between a web browser (the client) and a server will typ- 
ically be through use of the Hypertext Transfer Protocol 
(HTTP), which includes specific communication meth- 
ods that allow clients to request data from a server and 
send information to the server. According to the Hyper- 
text Transport Protocol, the client contacts the server at 
the Internet address as specified in the URL to open the 
connection. The client then sends a message to the 
server requesting service as specified by a request 
header that defines a method requested for the transac- 
tion. Typical HTTP methods are the GET, for getting an 
object from a server, and the POST, for posting data to 
an object on the server. The server then sends a 
response to the client consisting of response headers 
describing the state of the transmission, followed by the 
actual data. The connection is then closed. In a typical 
user interaction with the Internet, the user is requesting 
a web page written in the Hypertext Markup Language 
(HTML) from a server in the World Wide Web (WWW). 
Depending on the content of the web page, the user 
may further interact with the server by sending addi- 
tional information to the server. Ail such transmissions 
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to the server will hereinafter be referred to as "transac- 
tions." 

[0013] FIGURE 2 depicts a flow chart describing an 
overall method of providing enhanced security to a 

5 transaction on a computer network according to the 
present invention. Greater detail is provided in the dis- 
cussions accompanying FIGURES 3A-3D, 4 and 5. 
Referring to FIGURE 2, beginning with step 110, trans- 
action data is parceled into a number of different pack- 

10 ets. The packets are then assigned packet numbers at a 
step 120. Each packet is then assigned a route to its 
intended destination at a step 130, and the packets are 
then transmitted from the source to the destination via 
the assigned route at a step 140. 

is [0014] Referring to FIGURE 3A-3D, the data to be 
passed between the client computer and a server is typ- 
ically transmitted as one or more packets. In FIGURE 
3A, transaction data 300 may include such information 
as a 1 6-digit credit card number, as shown. According to 

20 prior art Internet packet routing techniques, the transac- 
tion data 300 may be divided into a number of packets. 
For example, as shown in FIGURE 3B, the transaction 
data 300 has been divided into eight packets 301-308, 
each containing two characters of transaction data. 

25 Packets 301-308 are assigned packet numbers 1-8, 
respectively. According to a present embodiment of the 
invention, the transaction data is also divided into eight 
packets 331-338, but the packets in the sequence are 
assigned packets numbers according to a pseudo-ran- 

30 dom ordering. The sequence is referred to as pseudo- 
random in that the resulting sequence is preferably an 
increasing or decreasing series of random numbers. In 
other words, beginning with a first random number for 
the first packet, each subsequent packet number is cal- 

35 culated by taking a new random number and either add- 
ing or subtracting it from the first random number, 
depending on whether an increasing or decreasing 
sequence is desired. For a decreasing sequence, the 
random number for the first packet should be added to a 

40 base value large enough to ensure that subtracting sub- 
sequent random numbers will not result in a negative 
value. Each random number may have the same seed 
value or may have any number of different seed values. 
The packet renumbering scheme should be such that 

45 no two packets have adjacent numbers in order to 
increase the effectiveness of the security. In the exam- 
ple shown in FIGURE 3C, the transaction data has been 
divided into eight packets 331-338 that have been 
assigned packet numbers in increasing pseudo-random 

so sequence, 17-32-46-53-61-80-89-97. Alternatively, the 
transaction data may be divided into a larger number of 
packets. For example, as shown in FIGURE 3D, the 
transaction data has been divided into 16 packets 31 1- 
326, and the packets have been assigned packet num- 

55 bers 20-34-57-62-81 -88-95-101 -1 1 1-1 19-1 32- 147- 160- 
173-189-210, as an increasing pseudo-random 
sequence. 

[0015] FIGURE 4 illustrates a conventional method of 
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routing of Internet packets. For purposes of illustration, 
the Internet packets 301-308 are depicted with packet 
numbers 1-8, respectively, within the packet rather than 
the corresponding transaction data. As shown in FIG- 
URE 4, a source node A 401 is connected to a destina- 
tion node E 405 through a number of interconnected 
network nodes. 

[0016] From the source node A 401 , each packet of 
the transaction is transferred, in turn, through a number 
of intermediate nodes B 402, C 403, D 404 before 
reaching the destination E 405. Generally, unless a fail- 
ure occurs in a link between nodes in a route after trans- 
mission has begun, all packets of a transaction are sent 
along the same route, which is typically a "best" availa- 
ble route. Upon receipt at the destination node E 405, 
the server merely has to reassemble the packets in 
sequence to reconstruct the transaction data. 
[0017] The problem with the prior art approach to 
Internet packet routing is that a third party interested in 
capturing credit card numbers or other sensitive data 
could simply monitor a selected network node for net- 
work traffic containing URLs or other network 
addresses for destination nodes known to accept the 
credit card numbers or other sensitive information. For 
instance, many mail-order companies now offer on-line 
purchasing of products through the Internet. A third 
party could monitor a network node for all traffic 
addressed to the mail-order company. The captured 
network traffic could then be analyzed at the third 
party's leisure to locate the credit card numbers. Even 
where prior art encryption techniques are employed, the 
third party would still have a considerable amount of 
time to decrypt the information using common tech- 
niques. Even if the third party were to miss a small 
number of packets in the sequence, because the Inter- 
net packets are sequentially numbered, the third party 
would know which packets are missing and could apply 
a common number substitution to successively substi- 
tute each possible character or permutation of charac- 
ters that would appear in the missing packet in an 
attempt to find a valid credit card number. 
[0018] FIGURE 5 depicts an exemplary routing of 
transaction data 300 according to an embodiment of the 
present invention. The transaction data 300 is divided 
into 8 packets as shown in FIGURE 3C. For purposes of 
illustration, the Internet packets 331-338 are depicted 
with packet numbers 1 7-32-46-53-61 -80-89-97, respec- 
tively, within the packet rather than the corresponding 
transaction data. These packets of the transaction data 
enter a source node A 501 , whereupon the packets are 
sent along different routes to destination node, E 505. In 
a present embodiment of the invention, the different 
routes are forced by sending an indication along with 
each packet to choose randomly from among several 
possible routes. 

[001 9] For instance, in the example of FIGURE 5, the 
network includes a number of intermediate nodes B 
502, C 503, D 504, F 506, G 507, H 508, I 509, J 510, 
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and K 511, all of which are interconnected such that 
Internet packets may travel over a number of routes 
when being sent from the source node to the destination 
node. For example, one exemplary routing assigned to 
5 each of the packets of the transaction data is shown in 
Table 1 below. 



TABLE 1 



Packet Number 


Route 


17 


A-B-C-J-K-F-E 


32 


A-l-H-G-K-E 


46 


A-H-K-J-C-D-E 


53 


A-H-F-K-E 


61 


A-B-l-C-D-E 


80 


A-I-CXJ-E 


89 


A-H-F-E 


97 


A-G-H-F-E 



[0020] Since each of the packets are transmitted 
25 along different routes, it is likely that they will arrive at 
their destination in an order other than their initial trans- 
mission order. However, since the packets have been 
numbered as either an increasing or decreasing series, 
the packets merely have to be placed in a correspond- 
30 ing increasing or decreasing order to reconstruct the 
transaction data. 

[0021] With the present invention, a third party moni- 
toring transmissions at any given node will only capture 
a small portion of the total number of packets making up 

35 a transaction. For instance, if the third party is monitor- 
ing the Internet at node D 504, only 2 of the 8 packets of 
the transaction data 300 would be captured. Even if the 
third party knows of the sequencing scheme of the 
present invention, for example, the packets are num- 

40 bered in an increasing sequence, only the relative order 
of the intercepted packets would be known. While the 
third patty could try a high-speed substitution in an 
attempt to guess the missing digits, the third party 
would have no way of knowing how many packets were 

45 missing, or where to try the substitutions. 

[0022] As will be appreciated, the present invention 
increases the security of the transaction data transmit- 
ted on a public network by encoding the relative position 
of a packet within a data stream and by assigning differ- 

so ent routes to the packets to lessen the likelihood that 
packets will be intercepted. Further, as will be appreci- 
ated by those skilled in the art, further security can be 
provided by applying encryption techniques to the data 
contained within as is well known in the prior art. 

55 

Claims 

The embodiments of the invention in which an 
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exclusive property or privilege is claimed are defined as 
follows: 

1 . A method of transmitting transaction data compris- 
ing a sequence of characters from a source node to s 
a destination node through a distributed network, 
the method comprising: 

a. distributing the sequence of characters 
among a plurality of packets; 10 

b. assigning each packet of the plurality of 
packets a packet number such that the ordinal 
position of each packet is unknown; and 

c. transmitting the plurality of packets from the 
source node to the destination node. is 

2. The method of Claim 1 , wherein the packet num- 
bers for a sequence such that the relative position 
of each packet is known. 

20 

3. A method of transmitting transaction data compris- 
ing a sequence of characters from a source node to 
a destination node through a distributed network, 
the method comprising: 

25 

a. distributing the sequence of characters 
among a plurality of packets; 

b. assigning each packet of the plurality of 
packets a packet number according to a 
pseudo-random function such that the packet 30 
numbed form a pseudo-random sequence; and 

c. transmitting the plurality of packets from the 
source node to the destination node. 

4. The method of Claim 3, wherein distributing the 35 
sequence of characters among a plurality of pack- 
ets comprises distributing into each packet of the 
plurality of packets, a single character of the 
sequence of characters. 

40 

5. The method of Claim 3, wherein the pseudo-ran- 
dom sequence is an increasing sequence of ran- 
dom numbers. 

6. The method of Claim 5, wherein each packet of the 45 
plurality of packets is assigned a number according 

to a pseudo-random function such that the packet 
numbers form a pseudo-random sequence by: 

a. assigning a first packet of the pseudo-ran- so 
dom sequence a random number as its packet 
number; and 

b. for each subsequent packet number in the 
pseudo-random sequence, adding a random 
number to the packet number of preceding 55 
packet. 

7. The method of Claim 3, wherein the pseudo-ran- 



10 

dom sequence is a decreasing sequence of ran- 
dom numbers. 

8. The method of Claim 7, wherein each packet of the 
plurality of packets is assigned a packet number 
according to a pseudo-random function such that 
the packet numbers form a pseudo-random 
sequence by: 

a. assigning a first packet of the pseudo-ran- 
dom sequence a random number as its packet 
number: and 

b. for each subsequent packet number in the 
pseudo-random sequence, subtracting a ran- 
dom number from the packet number of an 
immediately preceding packet. 

9. The method of Claim 1 , further comprising arrang- 
ing, at the destination node, the plurality of packets 
according to the pseudo-random sequence such 
that the transaction data is reconstructed. 

10. A method of transmitting transaction data compris- 
ing a sequence of characters from a source node to 
a destination node through a distributed network 
interconnecting a plurality of network nodes includ- 
ing the source node and the destination node, the 
method comprising: 

a. distributing the sequence of characters 
among a plurality of packets; 

b. assigning each packet of the plurality of 
packets a packet number; and 

c. transmitting the plurality of packets from the 
source node to the destination node such that 
some of the plurality of packets are sent 
through a different route than others of the plu- 
rality of packets. 

11. The method of Claim 10, wherein the plurality of 
packets are transmitted from the source node to the 
destination node by transmitting each packet of the 
plurality of packets along a different route from the 
source node to the destination node. 

12. The method of Claim 7, wherein the plurality of 
packets are transmitted from the source node to the 
destination node by: 

a. assigning to each of the plurality of packets a 
route from the source node to the destination 
node, such that at least some of the plurality of 
packets are assigned different routes from oth- 
ers of the plurality of packets; and 

b. transmitting the plurality of packets from the 
source node to the destination node via their 
assigned routes. 
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1 3. The method of Claim 10, wherein a packet exists for 
each character of the sequence of characters, and 
distributing the sequence of characters among a 
plurality of packets comprises distributing into each 
packet of the plurality of packets, a single character 5 
of the sequence of characters. 

14. The method of Claim 10, further comprising arrang- 
ing, at the destination node, the plurality of packets 
such that the transaction data is reconstructed. 10 

15. A method of transmitting transaction data compris- 
ing a sequence of characters from a source node to 
a destination node through a distributed network 
interconnecting a plurality of network nodes includ- 15 
ing the source node and the destination node, the 
method comprising: 

a. distributing the sequence of characters 
among a plurality of packets; 20 

b. assigning each packet of the plurality of 
packets a packet number according to a 
pseudo-random function such that the packet 
numbers form a pseudo-random sequence; 

c. transmitting the plurality of packets from the 25 
source node to the destination node such that 
some of the plurality of packets are sent 
through a different route than others of the plu- 
rality of packets; and 

d. arranging, at the destination node, the plural- 30 
ity of packets according to the pseudo-random 
sequence of packet numbers such that the 
transaction data is reconstructed. 

16. The method of Claim 15, wherein transmitting the 35 
plurality of packets from the source node to the des- 
tination node comprises: 

a. assigning to each of the plurality of packets a 
route from the source node to the destination 40 
node, such that at least some of the plurality of 
packets are assigned different routes from oth- 
ers of the plurality of packets; and 

b. transmitting the plurality of packets from the 
source node to the destination node via their 45 
assigned routes. 

17. A method of transmitting transaction data compris- 
ing a sequence of characters from a source node to 

a destination node through a distributed network 50 
interconnecting a plurality of network nodes includ- 
ing the source node and the destination node, the 
method comprising: 

a. encrypting the transaction data; 55 

b. distributing the encrypted transaction data 
among a plurality of packets; 

c. assigning each packet of the plurality of 



packets a packet number according to a 
pseudo-random function such that the packet 
numbers form a pseudo-random sequence; 

d. transmitting the plurality of packets from the 
source node to the destination node such that 
some of the plurality of packets are sent 
through a different route than others of the plu- 
rality of packets; and 

e. arranging, at the destination node, the plural- 
ity of packets according to the pseudo-random 
sequence of packet numbers such that the 
transaction data is reconstructed. 
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FIGURE 2 
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